I'm working with the part II and trying to understand the use case descriptions. How do you understand all transaction with the customer and the system must be secured with SSL in the prepare itinerary use case. It seems to be strange for me. I think transaction doesn't need to be secured with SSL when the client just searches the flights information. In my opinion the transaction needs to be secured with SSL only when the client tries to pay by credit card. Maybe I'm wrong. Postings will be appreciated.
Perhaps your interpretation of "transaction" is a bit too rigid in this context. Inquiring your bank balance is a transaction and definitely must be secured. However, it is a business transaction, not a transaction in technical terms(ACID properties) that can lead to inconsistent outcome if you aren't careful.
Well, that's how I interpret it.
Open Group Certified Distinguished IT Architect. Open Group Certified Master IT Architect. Sun Certified Architect (SCEA).